Reporting of Security Incidents. Business Associate must immediately report to Covered Entity as soon as practicable, but not later than five (5) business days, after becoming aware of any Security Incident. Business Associate will provide Covered Entity with all information related to
Appears in 2 contracts
Sources: Business Associate Agreement, Business Associate and Data Use Agreements
Reporting of Security Incidents. Business Associate must immediately report to Covered Entity as soon as practicable, but not later than five (5) 5 business days, after becoming aware of any Security Incident. Business Associate will provide Covered Entity with all information related toto the Security Incident, including but not limited to the content requirements in 45 CFR §164.410. Business Associate will make members of its Workforce available and will cooperate with Covered Entity in any investigation related to a Security Incident. All incidents of ransomware that involve PHI will be considered a Security Incident that is reportable to Covered Entity.
Appears in 2 contracts
Sources: Agent Agreement, Agent Agreement